V— 

\ 21. (New) A computing environment configured to process a trusted command, 
comprising: 

ai\untrusted environment to parse a trusted command; and 

a tri^ted environment to receive the trusted command from the imtrusted environment 
and to commuijicate a representation of the tmsted command. 




\ 
\ 

\ 

1 22. (Ne\y) The computing environment of claim 21, wherein the trusted 

2 environment executes^the trusted command if the trusted environment detects confirmation of 

3 the trusted command. \ 

\ 
\^ 

1 23. (New) The c6i;nputing environment of claim 21, wherein the representation of 

2 the trusted command is communicated through a trusted path. 

\ 

1 24. (New) The computing environment of claim 23, wherein the trusted path is 



2 between a user and the trust environment. 



\ 

1 25. (New) The computing envirc^mient of claim 21, further comprising: 

2 a user interface to commimic^te with the untrusted environment and the 

3 trusted environment. 



1 26. (New) A method of processing a trusted command, comprising the steps of: 

2 parsing a trusted command in an untrusted mode of a system; 

3 establishing a trusted mode of the system; and 

4 communicating a representation of the trusteoScommand in the trusted mode. 

1 27. (New) The method of claim 26, further comprisink the step of: 

2 executing the trusted command in the trusted mode if cOfifirmation of the trusted 

3 command is detected. 

1 28. (New) The method of claim 26, the communicating step\omprising the step 

2 of: 

3 displaying a representation of the trusted command. 



\ 



052617.0762 HOUSTON U7670 v3 (PD90-0I41-1 CON) U.S. EXPRESS MAIL NO. BL357886603US 



1 2^, (New) A method of processing a trusted command, comprising the steps of: 

2 interpreting a trusted command in an untrusted mode; and 

3 \ executing the trusted command in a trusted mode. 



30. (New) The method of claim 29, further comprising the step of: 

convnunicating a representation of the trusted command in the trusted mode. 



1 31. (New) The method of claim 30, further comprising the step of: 

2 verifyingNlie trusted command in the trusted mode after the communicating 
step. \ 

\ 



32. (New) The method of claim 3 1 , the verifying step comprising the step of: 
2 requesting confiniiation of the trusted command in the trusted mode. 

:|; 1 33. (New) The method of'blaim 29, further comprising the step of: 

Cj 2 using the trusted command in the untrusted mode, 

□ 1 34. (New) The method of claim^9, further comprising the step of: 

2 transitioning from the untrusteii mode to the trusted mode. 

^3 1 35. (New) The method of claim 29, fiirther comprising the step of: 

2 transitioning from the untrusted mooe to the untrusted mode. 

1 36. (New) The method of claim 35, further comprising the step of: 

2 issuing a message to indicate a transition^ to the untrusted mode before the 

3 transitioning step. 

1 37. (New) The method of claim 29, further comprising the step of: 

2 detecting if a command is a trusted command in aiVuntrusted mode. 

1 38. (New) A machine-executed method for executing a misted command issued 

2 by a user on a computing system including an untmsted computing environment and a trusted 

3 computing environment, said method comprising the steps of: 
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4 (a) receiving user identification data in the trusted computing environment from 

5 the usV via a trusted path; 

6 (b)v^ receiving the trusted command from the user in the trusted computing 

7 environment^ia an untrusted path; 

8 (c) p'a^sing the trusted command in the untrusted computing environment to 



9 generate a parsed dc^mmand; 

li't^] 



10 (d) submitting the parsed command to the trusted computing environment; 

11 (e) performingVa security check on the parsed command and user identification 
2 data in the trusted computing^ environment; and 

1 3 (f) executing the tnmed command in the trusted computing environment. 



1 39. (New) The method of <^im 38, wherein the security check enforces a security 

2 criterion from the Department of Defense Trusted Computer System Evaluation Criteria 

3 (Ref No. DOD 5200.28-STD). 



1 40. (New) A method including the ste^Ds of claim 38 and additionally including 

2 the steps, executed after step (d) and before step (f) W claim 38, of: 

3 (1) in the trusted environment, displaying a\epresentation of the parsed command 

4 to the user; 

5 (2) receiving a signal from the user signifying whether the displayed 

6 representation accurately represents the trusted command; anc 

7 (3) if the signal signifies that the displayed represWtation does not accurately 

8 represent the trusted command, then preventing the performance of step (f) of claim 38. 
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